MAL-2025-189388 Malicious code in scripts-jabbah-apollo-phenomic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b5ee5da379e5c309f399f54e4cabd154042bb01dbcf1183ea02d2fd6c98bb71 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190038 Malicious code in umbra-iota-graphql-callback (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0216011a857c745443a164b8b961b2825a42498fd66c95b1ea56899885b894bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187814 Malicious code in lint-staged-javascript-jwt-zooarchaeology (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4cad43193b55e96d7ea3cd1d436ee7ac5623f0f72367cc583e53d0e57d1fbc61 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188937 Malicious code in public-final-iota-upsilon-array (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector df5b112f5906a2a0cd00f09c3c6173c301de7c42a79c707edaf7e7b5470c38d2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-190379 Malicious code in xenos-lepton-cosmogenic-telesto (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8bd42edaad102d51c7897f5f9f97d176aabb390e1ccf4beee36af7105a32ec56 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189131 Malicious code in registry-relay-electron-builder-vuetify (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a67c1995ab1976896034e028ee640c5ae740b13db01b79296b2487d4d3fcf022 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188792 Malicious code in postgres-proteomics-markdown-abiogenesis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6860516dce9a9d7e0ede3eb6cdc0557443c2c6fd995d1d86b1226558ffedea50 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-188068 Malicious code in miranda-eigenstate-markdownlint-cosmogenic (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 60730d7b1b3a3616722a67fef2da7b80c756c109e822a7f463094c8d3d4741df This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189331 Malicious code in sails-remark-terser-hyperion (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7a0f3058a09994582d34c66c02056c0bae2b496ea850945346438715500f8816 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185789 Malicious code in betelgeuse-csrf-aldebaran-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adc4d06a9a2a5838b3cfab17e7d8abdd29e52f75c1327cdb199e805a5a420465 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187375 Malicious code in html-webpack-plugin-multiverse-proteomics-blackhole (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f04dd975db833fdc723e01450c24356d92668375df821a448e8323c02bf11fd6 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185596 Malicious code in astrochemistry-planckscale-levels-singularitarianism (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d09eaada391f12d930144df90244194a3d73586bebf0dca02fb04568762e1e1e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189259 Malicious code in rocket-got-heka-json (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 778e69e1b6a1c981f67cb6ad0fce677345c087976404dfb27b70709dfe9619e5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185487 Malicious code in apex-aurora-xml-fomalhaut (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector dd7d0a68560ea990b728310621a54435d29f21a74d08f8126b4956b41fc0234e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187331 Malicious code in helmet-terser-isostasy-nova (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c6d590435965fd0d4709f2a296b53d67c019e8b303be67e195da8cf4cba2cfc9 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189090 Malicious code in react-bootstrap-await-vortex-betelgeuse (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bfe2df41fe79aa7d62e4bc1574ba393debd5f95cf7b85fa3cba47c2287f69cc0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-185503 Malicious code in apollo-geochronology-stream-readable (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1853cf9a3f20a918e290a6d47a2239df7fb6e98aac8909d1af2210c7b228b0b8 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-189873 Malicious code in terser-webpack-plugin-delphinus-membrane-cryovolcano (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 83f1fbd056f464401107ffa949a75c56dc9110b1b201fa564b844e813212402a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187928 Malicious code in markdown-nconf-string-xerxes (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 8074d92510a28e3e6b1da7ca41610927761684bad1dbfcb169033072bdcd11ec This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

MAL-2025-187352 Malicious code in hexo-duplex-xenos-bootstrap (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fa1151ddade4025065c48113f1079d31279af60beb4be33b8708bba930be0e96 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...